[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: GPG signing of debian packages

davidek@ipnp.troja.mff.cuni.cz wrote:
> Dear experts,
>    I am trying to build my own debian packages with GPG signature. I set 
> up gnupg, ran gpg and gpg --gen-key and also filled the variable 
> default-key with my generated keyID in ~/.gnupg/gpg.conf. I thought that 
> this is all I have to do, since Debian Maintainer's guide claims that
>          dpkg-buildpackage -rfakeroot
> needs as the input the secret passhprase (twice). I expected I 
> would be asked for the passphrase, but it's not the case. 

I think question has been answered already, just a tidbit:

- I personally always run dpkg-buildpackage with -uc -us and use
  debsign -kkeyid foo_changes to sign the /final/ packages
  afterwards. I usually build the packages more than once before
  uploading as I often find some last-minute bug, and don't like to
  type in my gpg-passphrase more frequently than necessary.

          cu andreas

The 'Galactic Cleaning' policy undertaken by Emperor Zhark is a personal
vision of the emperor's, and its inclusion in this work does not constitute
tacit approval by the author or the publisher for any such projects,
howsoever undertaken.                                (c) Jasper Ffforde

Reply to: